vulnerability
Red Hat: CVE-2019-14584: edk2: NULL pointer dereference in AuthenticodeVerify() (Multiple Advisories)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 5 | (AV:L/AC:L/Au:N/C:P/I:P/A:P) | Jun 3, 2021 | Oct 27, 2023 | Aug 11, 2025 |
Severity
5
CVSS
(AV:L/AC:L/Au:N/C:P/I:P/A:P)
Published
Jun 3, 2021
Added
Oct 27, 2023
Modified
Aug 11, 2025
Description
Null pointer dereference in Tianocore EDK2 may allow an authenticated user to potentially enable escalation of privilege via local access.
Solutions
redhat-upgrade-edk2-aarch64redhat-upgrade-edk2-ovmf
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.